diff options
| author | Paul S. Owen <psotfx@users.sourceforge.net> | 2001-10-10 17:55:39 +0000 |
|---|---|---|
| committer | Paul S. Owen <psotfx@users.sourceforge.net> | 2001-10-10 17:55:39 +0000 |
| commit | 61288e89d9da55e07c5c650a1b38d7bf2b62edd2 (patch) | |
| tree | f124dfa6d450ebe41fc57bfced8b461690ca91ac /phpBB/profile.php | |
| parent | eaec8182879a4efe6eff436ebe0592632a321f7a (diff) | |
| download | forums-61288e89d9da55e07c5c650a1b38d7bf2b62edd2.tar forums-61288e89d9da55e07c5c650a1b38d7bf2b62edd2.tar.gz forums-61288e89d9da55e07c5c650a1b38d7bf2b62edd2.tar.bz2 forums-61288e89d9da55e07c5c650a1b38d7bf2b62edd2.tar.xz forums-61288e89d9da55e07c5c650a1b38d7bf2b62edd2.zip | |
Send new password + old password check stuff ... this time I'm fairly confident it works
git-svn-id: file:///svn/phpbb/trunk@1157 89ea8834-ac86-4346-8a33-228a782c2dd0
Diffstat (limited to 'phpBB/profile.php')
| -rw-r--r-- | phpBB/profile.php | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/phpBB/profile.php b/phpBB/profile.php index fa108eee96..194a2c99b0 100644 --- a/phpBB/profile.php +++ b/phpBB/profile.php @@ -539,8 +539,6 @@ if( isset($HTTP_GET_VARS['mode']) || isset($HTTP_POST_VARS['mode']) ) } else { - $password = md5($password); - if( $mode == "editprofile" ) { $sql = "SELECT user_password @@ -550,7 +548,7 @@ if( isset($HTTP_GET_VARS['mode']) || isset($HTTP_POST_VARS['mode']) ) { $row = $db->sql_fetchrow($result); - if( $row['user_password'] != $password_current ) + if( $row['user_password'] != md5($password_current) ) { $error = TRUE; $error_msg = $lang['Current_password_mismatch']; @@ -564,6 +562,7 @@ if( isset($HTTP_GET_VARS['mode']) || isset($HTTP_POST_VARS['mode']) ) if( !$error ) { + $password = md5($password); $passwd_sql = "user_password = '$password', "; } } |